package cn.tedu.security.controller;

import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;
@RestController
@RequestMapping("/api")
public class ResourceController {

        @GetMapping("/public/hello")
        public String helloPublic() {
            return "Hello from a public endpoint! You don't need to be authenticated to see this.";
        }
        @PreAuthorize("hasAuthority('sys:private:view')")
        @GetMapping("/private/hello")
        public String helloPrivate() {
            return "Hello from a private endpoint! You need to be authenticated to see this.";
        }

}
